Operating Systems 


Objectives 


e Discuss threats to operating systems 


e Explain common methods to securing operating 
systems 


Common Desktop Operating 
Systems 


e Numbers are debatable 


Microsoft 
e Overall around 80-85% market share - NetShare 


e 400 million Windows 10 devices alone - 25% of Windows market - 
NetShare 


e Over 1 billion devices 
e Apple 
e Overall around 7-10% market share - NetShare 
° 100 million devices as of April 2017 
e Linux 
e Around 2% share 


Common Mobile Operating Systems 


Worldwide 
e Microsoft 

e <1% - NetShare 
e Apple 

e 33% - NetShare 
e Linux 

e 64% - NetShare 


How operating systems work 


e Kernel - Ring level 0 

e User Level - Ring level 3 

e Some operating systems have rings 1 and 2 

e Most later operating systems have just 2 rings - 0,3 
* O is most privileged 


Vulnerabilities 


e Most vulnerabilities are in applications 
e Some vulnerabilities in the operating system 


e Year over year Apple has had the most vulnerabilities 
(~60% desktop, 84% of mobile) 


e Microsoft is #2 
e Linux vulnerabilities are very small in comparison 


Threats 


In order to look at threats, we need to look at market 
share 


e Even though Apple has historically had more 


vulnerabilities, their threats are less due to market 
share 


* It's more lucrative to go after the market share 
e Trojans 
e Worms 
e Viruses 


Securing operating systems 


e Use least privilege 


Remove unnecessary services, applications and 
protocols 


*Use antivirus - it’s your last line of defense 
e Use best practices 
e Hardening guides - CIS, NIST, NSA 


